PT-2025-47660 · WordPress · Wordpress+1

Lucas Montes

·

Published

2025-11-21

·

Updated

2026-02-09

·

CVE-2025-11368

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions LearnPress – WordPress LMS Plugin versions prior to 4.2.9.5
Description The LearnPress – WordPress LMS Plugin for WordPress is affected by a sensitive information disclosure issue. Missing capability checks in the REST endpoint /wp-json/lp/v1/load content via ajax allow arbitrary callback execution of admin-only template methods. This enables unauthenticated attackers to retrieve sensitive educational content, including admin curriculum HTML, quiz questions with correct answers, and course materials, by supplying valid numeric IDs to the REST API endpoint. The vulnerable parameter is the numeric ID supplied to the /wp-json/lp/v1/load content via ajax endpoint.
Recommendations Versions prior to 4.2.9.5 should be updated.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2025-11368

Affected Products

Learnpress
Wordpress